Remote Principal DevSecOps Engineer(Active Clearance Required)

Description:

• Second Front Systems (2F) is seeking a Principal DevSecOps Engineer to join their mission-driven team.
• The role involves architecting and implementing scalable, secure cloud infrastructure using Kubernetes and Pulumi, ensuring compliance with DoD and IC requirements.
• The engineer will support the security and operations of the 2F Suite across air-gapped and classified environments, collaborating with government partners and security teams.
• Responsibilities include building and managing CI/CD pipelines, integrating DevSecOps best practices, and maintaining SIEM and security tooling for observability and compliance.
• The position requires designing, developing, and debugging microservices in Go, focusing on performance, security, and modularity.
• The engineer will work cross-functionally to assess infrastructure needs and deliver on product roadmap milestones in a fast-paced Agile environment.
• Thorough documentation of work is essential to ensure secure, repeatable, and auditable deployments.
• Collaboration with DoD/IC stakeholders is necessary to provision secure cloud resources in classified settings.
• The role includes contributing to R&D efforts to advance platform capabilities in secure environments and acting as a mentor to shape internal DevSecOps strategy.

Requirements:

• Candidates must have 8+ years of relevant experience in DevSecOps, systems engineering, or infrastructure software development.
• Architect-level expertise in designing and operating cloud-native platforms using AWS, Azure, or GCP is required.
• Deep experience with Kubernetes, Docker, and cloud-native application orchestration is essential.
• Strong proficiency in Golang or similar languages, particularly with infrastructure as code (Pulumi preferred), is necessary.
• Familiarity with compliance frameworks such as FedRAMP, DoD SRG, NIST 800-53, and the RMF/ATO process is required.
• Proven experience deploying systems in air-gapped or classified environments is essential.
• Experience in building and maintaining secure CI/CD pipelines and integrating security throughout the SDLC is necessary.
• Hands-on experience with SIEM, monitoring, and alerting systems is required.
• Understanding of REST APIs, authentication flows, event-driven architecture, and microservice patterns is necessary.
• Excellent written and verbal communication skills, along with strong documentation habits, are required.
• Candidates should be comfortable working independently and in distributed teams, managing competing priorities across complex projects.

Benefits:

• The position offers a competitive salary ranging from $225,000 to $250,000.
• Employees receive 100% healthcare, vision, and dental coverage.
• A 401(k) plan with a 3% company contribution is provided.
• Wellness perks, including fitness classes and mental health resources, are available.
• An equity incentive plan and stipends for tech and office supplies are included.
• An annual professional development stipend is offered.
• Flexible paid time off and federal holidays off are part of the benefits.
• Parental leave is provided, and employees can work from anywhere.